Does this script download the rules daily, or does it simply install rules that I must download manually (or via cron)?

Also, as easy as it looks, it also looks somewhat complicated with creating directories, dealing with possible error messages, etc. Is it really straightforward for the most part?

Click to expand...

Hello Markb,
the script is very straightforward to use if you have already installed and configured GotRoot rules to work in your server. After you have configured the server, this script will help you to update the rules that you manually downloaded.

Hello k-planethost,
1. Don't uninstall mod sec nor disable it, leave it as it is. Just update it using easyapache in WHM.
2. If you are using my autoupdater, just follow the instructions in my web page, that's it.

i should run first easy apache update thanks for the update
how can i see after witch version of mod sec cpanel will install ?
also on your webpage you say download the rules from gotroot probably you mean from here?the free rulesAtomicorp

i should run first easy apache update thanks for the update
how can i see after witch version of mod sec cpanel will install ?
also on your webpage you say download the rules from gotroot probably you mean from here?the free rulesAtomicorp

Click to expand...

You can check in EasyApache what version of Mod_Security you will install, that is the best place to check what is the last version CPanel has.

so i have 2.5.12 already installed
lets say that i want to install modsec-201008191901.tar.bz2

if i fire the script to execute

Please be sure to backup any customizations that you have previously been made.

Rules will be copied at: /usr/local/apache/conf/modsec_rules
A backup directory will be created just in case you need it back.

Please give me the name of the TAR file?
"201008191901"
You didn't enter a valid GotRoot or ASL file rules
try again.
mod sec rules are on /tmp partition and the script on /usr/src on a specific folder

so i have 2.5.12 already installed
lets say that i want to install modsec-201008191901.tar.bz2

if i fire the script to execute

Please be sure to backup any customizations that you have previously been made.

Rules will be copied at: /usr/local/apache/conf/modsec_rules
A backup directory will be created just in case you need it back.

Please give me the name of the TAR file?
"201008191901"
You didn't enter a valid GotRoot or ASL file rules
try again.
mod sec rules are on /tmp partition and the script on /usr/src on a specific folder

Click to expand...

You don't need write double quotes, only the version number, I mean, just write: 201008191901

same error mate on 3 servers
exept from the rules saved on /tmp what else your script needs to run

Click to expand...

From my site:

"Here is an automatic modsec rules auto updater, is easy to use, and you have to follow just a few guidelines to use it. It is free to use and we don't assume any responsibility in the use of the script, use it at your own risk.

How to use it:

1. Download GotRoot rules from Welcome : Got Root and save it in your /tmp file.
2. Save the script in its own folder and make the script executable (chmod u+x)
3. At running time the script will ask you for the file version, nothing else, then it will do everything automatically for you.
4. So, for example, if the rule file is called modsec-201001121214.tar.gz, you will have to write "201001121214".
The script will test Apache to check everything was fine, if it is, you could restart apache from there or do it later manually.
5. The script will save a backup with your actual rules before it does the update, if Apache gives any error, you can manually restore everything on its place.
6. Read any text inside the file for any last minute config or update."

On the other hand, you have to create the following directories:

- /var/asl/data/suspicious
- /var/asl/data/msa
- /var/asl/data/audit

they are not needed in WHM, but GotRoot uses them for their rules, so, you need to create them in order for the rules to work, set chmod to 770 on all of them. The creation of the directories has to be done in the process of installing for the first time GotRoot rules and remember that my script is not an installer, it is an script to update the rules that had been previously installed.